package cn.tj212.xiaoyin.common.web;

import javax.servlet.*;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpServletResponseWrapper;
import javax.servlet.http.HttpSession;
import java.io.IOException;

public class DisableUrlSessionFilter implements Filter {
    @Override
    public void init(FilterConfig filterConfig) throws ServletException {

    }

    @Override
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
        if (!(servletRequest instanceof HttpServletRequest)){
            filterChain.doFilter(servletRequest,servletResponse);
            return;
        }

        HttpServletRequest req= (HttpServletRequest) servletRequest;
        HttpServletResponse rep= (HttpServletResponse) servletResponse;

        if (req.isRequestedSessionIdFromURL()){
            HttpSession session=req.getSession();
            if (session!=null){
                session.invalidate();
            }
        }

        //wrap response to remove URL encoding

        HttpServletResponseWrapper wrappedResponse=new HttpServletResponseWrapper(rep){
            @Override
            public String encodeRedirectURL(String url) {
                return url;
            }

            @Override
            public String encodeRedirectUrl(String url) {
                return url;
            }

            @Override
            public String encodeURL(String url) {
                return url;
            }

            @Override
            public String encodeUrl(String url) {
                return url;
            }
        };
        filterChain.doFilter(req,wrappedResponse);
    }

    @Override
    public void destroy() {

    }
}
